You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: learn-pr/github/github-actions-automate-tasks/4-knowledge-check.yml
+28Lines changed: 28 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -54,3 +54,31 @@ quiz:
54
54
- content: "Opening an issue"
55
55
isCorrect: false
56
56
explanation: "Event triggers use Git references, and opening an issue produces a Git reference."
57
+
- content: "What are the two types of manual events that can trigger a GitHub Actions workflow?"
58
+
choices:
59
+
- content: "workflow_run and push_manual"
60
+
isCorrect: false
61
+
explanation: "workflow_run is an event that triggers when another workflow completes, not a manual event. repository_run is not a valid GitHub Actions event."
62
+
- content: "workflow_dispatch and repository_dispatch"
63
+
isCorrect: true
64
+
explanation: "GitHub Actions supports these two manual event triggers: workflow_dispatch allows manual triggering from the GitHub UI or API with customizable input parameters, and repository_dispatch enables workflows to be triggered by external systems via POST requests to the GitHub API."
65
+
- content: "manual_run and external_trigger"
66
+
isCorrect: false
67
+
explanation: "Neither manual_run nor external_trigger are valid GitHub Actions event types."
68
+
- content: "workflow_trigger and repository_webhook"
69
+
isCorrect: false
70
+
explanation: "workflow_trigger doesn't exist in GitHub Actions. While repository_webhook sounds similar to webhooks, the correct term for the external API-triggered event is repository_dispatch."
71
+
- content: "What is the primary benefit of using GitHub's larger hosted runners?"
72
+
choices:
73
+
- content: "They provide additional CPU and memory resources for running resource-intensive jobs."
74
+
isCorrect: true
75
+
explanation: "Larger runners offer increased CPU and memory, allowing you to run workflows that require more resources than standard runners provide."
76
+
- content: "GitHub's larger runners are available at no additional cost beyond standard runners."
77
+
isCorrect: false
78
+
explanation: "Larger runners incur additional costs based on their usage, unlike standard runners which may be included in your plan."
79
+
- content: "Larger runners come with completely different pre-installed tools compared to standard runners."
80
+
isCorrect: false
81
+
explanation: "These larger runners maintain compatibility with existing workflows by including the same preinstalled tools as standard `ubuntu-latest` runners."
82
+
- content: "Repository-level policies cannot be configured to control access to larger runners."
83
+
isCorrect: false
84
+
explanation: "To control access to larger runners, you can configure repository or organization-level policies, helping you manage costs and access effectively."
- content: "Which of the following is a feature unique to GitHub Enterprise Cloud (GHEC)?"
18
-
choices:
19
-
- content: "Requires on-premises deployment and infrastructure management"
20
-
isCorrect: false
21
-
explanation: "Incorrect. This describes GitHub Enterprise Server (GHES), not GHEC. GHEC is hosted and managed by GitHub in the cloud."
22
-
- content: "Provides centralized user management with identity provider integration"
23
-
isCorrect: true
24
-
explanation: "GHEC supports centralized user management and integrates with identity providers using SAML (for SSO) and SCIM (for user provisioning), which is a key feature of cloud-hosted enterprise solutions."
25
-
- content: "Must be installed and maintained by the organization's IT team"
26
-
isCorrect: false
27
-
explanation: "Incorrect. GHEC is maintained by GitHub and requires no installation or infrastructure management by the organization."
28
-
- content: "Operates entirely within a private cloud environment"
29
-
isCorrect: false
30
-
explanation: "Incorrect. GHEC operates in GitHub’s public cloud infrastructure, not a private cloud."
31
-
32
17
- content: "What actions can you take at enterprise level to manage the use of GitHub Actions in your enterprise instance?"
33
18
choices:
34
19
- content: "Create workflow templates"
@@ -48,65 +33,109 @@ quiz:
48
33
explanation: "Correct. Custom labels can be used when you need to run jobs on runners that have specific capabilities."
49
34
- content: "Add proxy configurations to your runners after they start."
50
35
isCorrect: false
51
-
explanation: "Incorrect. If you need a self-hosted runner to communicate with GitHub via a proxy server, you must add all proxy configurations to your runner before starting it."
36
+
explanation: "Incorrect. You must add all proxy configurations to your runner before starting it."
52
37
- content: "Add the IP address or IP address range of your runners at repository level."
53
38
isCorrect: false
54
-
explanation: "Incorrect. If your organization has configured an IP allowlist, you must add the IP address or IP address range of your self-hosted runners to the IP allowlist. IP allowlists are found in an organization's Settings."
39
+
explanation: "Incorrect. This action is managed at the organization level in IP allowlists."
55
40
56
41
- content: "What are encrypted secrets?"
57
42
choices:
58
-
- content: "Encrypted secrets are authentication tokens you can generate in your account settings."
43
+
- content: "Authentication tokens you can generate in your account settings."
59
44
isCorrect: false
60
-
explanation: "Incorrect. The authentication tokens you can create in your account settings are personal access tokens (PATs)."
61
-
- content: "Encrypted secrets are the equivalent of SSH keys in GitHub."
45
+
explanation: "Incorrect. This definition matches personal access tokens (PATs)."
46
+
- content: "The equivalent of SSH keys in GitHub."
62
47
isCorrect: false
63
-
explanation: "Incorrect. SSH keys are also called SSH keys in GitHub."
64
-
- content: "Encrypted secrets are encrypted environment variables you can create to store sensitive information."
48
+
explanation: "Incorrect. SSH keys are separate and named accordingly."
49
+
- content: "Encrypted environment variables for storing sensitive information."
65
50
isCorrect: true
66
-
explanation: "Correct. Once created, encrypted secrets become available for use in your workflows and actions at the level at which they were created (organization or repository)."
51
+
explanation: "Correct. You can securely scope them by repository, organization, or environment."
67
52
68
-
- content: What is a key benefit of using **reusable workflows** in GitHub Actions?
53
+
- content: "Which credential type poses the greatest security risk if used in GitHub Actions?"
69
54
choices:
70
-
- content: Prevents any external contributors from running workflows
55
+
- content: "Repository deploy keys"
71
56
isCorrect: false
72
-
explanation: Reusable workflows improve standardization, but they do not automatically block external contributors. Security settings must be configured separately.
73
-
- content: Reduces redundancy and maintenance overhead
57
+
explanation: "Incorrect. These credentials are scoped and safer for single-repo use."
58
+
- content: "Personal access token (classic)"
74
59
isCorrect: true
75
-
explanation: Reusable workflows help avoid repetitive configuration across multiple repositories, reducing maintenance effort.
76
-
- content: Can only be used in the same repository where they are defined
60
+
explanation: "Correct. These credentials have broad access, making them riskier."
61
+
- content: "GitHub App tokens"
77
62
isCorrect: false
78
-
explanation: Reusable workflows can be referenced from a different repository, allowing broader reuse.
79
-
- content: Automatically restricts all workflows to internal users
63
+
explanation: "Incorrect. These credentials are more granular and preferred for security."
64
+
- content: "GITHUB_TOKEN"
80
65
isCorrect: false
81
-
explanation: GitHub does not enforce internal-only workflow execution unless explicitly configured.
66
+
explanation: "Incorrect. It is scoped and managed automatically."
82
67
83
-
- content: What is a primary benefit of using **GitHub-hosted runners** instead of self-hosted runners?
68
+
- content: "Which feature enforces that tests pass before code can be merged?"
84
69
choices:
85
-
- content: Full control over hardware and software configuration
70
+
- content: "Organization secrets"
86
71
isCorrect: false
87
-
explanation: Full control is a feature of self-hosted runners.
88
-
- content: Ability to access internal/private networks
72
+
explanation: "Incorrect. They handle credentials, not enforcement of tests."
73
+
- content: "Repository rule sets"
74
+
isCorrect: true
75
+
explanation: "Correct. Rule sets can enforce status checks before merges."
76
+
- content: "Workflow templates"
77
+
isCorrect: false
78
+
explanation: "Incorrect. These aid reuse, not enforcement."
79
+
- content: "Runner groups"
80
+
isCorrect: false
81
+
explanation: "Incorrect. They help manage runners, not enforce rules."
82
+
83
+
- content: "Which of the following is unique to GitHub Enterprise Cloud (GHEC)?"
84
+
choices:
85
+
- content: "Requires on-premises infrastructure"
89
86
isCorrect: false
90
-
explanation: GitHub-hosted runners do not have direct access to internal networks.
91
-
- content: Automatic updates for the OS and preinstalled packages
87
+
explanation: "Incorrect. That describes GitHub Enterprise Server."
88
+
- content: "Centralized user management with identity provider integration"
92
89
isCorrect: true
93
-
explanation: GitHub-hosted runners are automatically updated by GitHub, including OS patches and preinstalled tools.
94
-
- content: Custom installation of non-standard software
90
+
explanation: "Correct. GHEC integrates with identity providers using SAML (Security Assertion Markup Language)."
91
+
- content: "IT teams must install it."
92
+
isCorrect: false
93
+
explanation: "Incorrect. GitHub hosts and manages GHEC."
94
+
- content: "Runs in a private cloud"
95
95
isCorrect: false
96
-
explanation: Custom installation is supported with self-hosted runners, not GitHub-hosted ones.
96
+
explanation: "Incorrect. GHEC runs on GitHub’s public cloud."
97
97
98
-
- content: What is the best practice when managing **encrypted secrets** in GitHub Actions?
98
+
- content: "What is a key benefit of using reusable workflows?"
99
99
choices:
100
-
- content: Print secrets in workflow logs to assist with debugging
0 commit comments